CVE-2016-5195: Linux Kernel Privilege Escalation

Mitel has become aware of a Linux Kernel Privilege Escalation vulnerability associated with the Copy on Write function, which affects multiple Linux distributions and versions. This vulnerability, nicknamed “Dirty COW” has the following CVE ID assigned:

CVE-2016-5195

Detailed Description

As per Red Hat

"A race condition as found in the way the Linux kernel's memory subsystem handled the copy-on-write (COW) breakage of private read-only memory mappings. An unprivileged local user could use this flaw to gain write access to otherwise read-only memory mappings and thus increase their privileges on the system"

Affected Products

Security Bulletins are currently available for the following products:

This section will be updated as additional Security Bulletins are issued.

Products Not Affected

Products using the Windows Operating System are not affected.

Risk Assessment

Red Hat has assigned CVE-2016-5195 with a CVSS v2 Base Score of 6.9. This vulnerability requires local access to exploit, although general exploits for this vulnerability have been released which might allow for the exploitation of this vulnerability via unpatched web applications or other interfaces. At this time, Mitel has no knowledge of Mitel systems that have been compromised.

The risk associated with affected Mitel products will vary from product to product.

Mitigation / Recommended Action

This advisory will be updated to communicate remediation versions for affected products as identified.

The maintainers of various distributions are releasing kernel updates to address this vulnerability. Customers running Mitel Applications on their own operating systems are advised to contact the respective vendor to determine which updates should be applied.

Additional recommendations will be issued as Mitel continues its investigation.